$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/249/bGRMkErAi1lWQBSDQByRvZqRNnQ.roa File: bGRMkErAi1lWQBSDQByRvZqRNnQ.roa (raw, json) Hash identifier: 8r9JSqwBk4bNC5rBqNdYv4Rm4kZ65lm9az2u4kMYhKc= Subject key identifier: 6C:64:4C:90:4A:C0:8B:59:56:40:14:83:40:1C:91:BD:9A:91:36:74 Certificate issuer: /CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Certificate serial: 53 Authority key identifier: 27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/bGRMkErAi1lWQBSDQByRvZqRNnQ.roa Signing time: Fri 31 Jan 2025 01:33:42 +0000 ROA not before: Fri 31 Jan 2025 01:33:42 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7679 IP address blocks: 218.219.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Validity Not Before: Jan 31 01:33:42 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=6C644C904AC08B5956401483401C91BD9A913674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c4:d1:07:c7:cb:00:66:2c:37:cd:03:4b:32: 2f:26:4c:25:73:2e:45:dc:18:60:73:5c:d0:18:e9: 52:4d:18:ea:df:37:d9:9f:0e:bf:b6:4f:ab:2e:75: a6:6b:49:f0:30:eb:d4:3a:5d:39:d4:7a:17:41:ff: fb:5c:ac:ab:15:30:61:38:0d:67:de:dc:35:e6:32: 1d:81:e5:f9:65:81:6a:8c:76:80:c8:ce:5f:e1:92: ba:28:16:b5:ec:3d:46:2d:f9:05:d8:d2:f4:9d:14: 92:d5:de:c5:98:b5:24:26:d4:75:12:a2:42:a3:ad: 64:79:1b:4f:6c:8c:e7:48:67:fb:c6:c6:1b:94:ff: 44:8c:a8:67:c3:db:df:15:3a:8d:86:01:e4:bc:1f: e7:2e:55:cc:09:be:37:4f:94:d2:58:2b:40:37:95: 02:41:9b:25:2f:d8:8a:f2:74:59:0d:6c:01:ac:de: 37:35:a5:58:12:01:f6:5c:ef:85:fd:07:fe:e0:6f: ca:2b:b7:0e:3e:36:04:38:a7:bf:81:d3:96:64:6a: 31:b5:89:12:e5:9f:6e:4a:ec:be:02:fd:3f:ab:52: 57:21:d5:48:7e:b7:e3:c1:38:35:2c:fd:9e:c8:e3: c3:bb:ae:c5:52:5c:f5:58:fd:3d:c1:1c:4c:bc:68: 59:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:64:4C:90:4A:C0:8B:59:56:40:14:83:40:1C:91:BD:9A:91:36:74 X509v3 Authority Key Identifier: keyid:27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/bGRMkErAi1lWQBSDQByRvZqRNnQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.219.128.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:f6:fd:44:ce:38:f2:b2:72:5f:9d:7d:29:e7:b9:cc:45:c8: a6:c8:37:03:be:3d:3e:cf:16:25:03:23:39:ac:5c:58:a3:22: 67:f4:1e:7b:ba:82:3a:e9:bc:d2:a6:bb:3a:7a:7a:5d:24:e9: e1:bd:38:34:f7:53:d3:9c:e0:a7:f8:f6:47:dc:b7:aa:30:3a: 50:14:72:33:01:be:b4:eb:ff:12:88:dd:b1:c6:c3:97:9e:f8: 16:e8:ef:40:ac:b0:ed:77:58:66:3c:9a:5b:4a:97:1b:48:51: 05:7e:9a:11:38:5a:66:70:f3:b9:93:76:5d:f0:fe:4b:45:93: 0a:5d:cc:30:7f:df:7c:eb:60:d0:89:77:47:07:6e:8e:ed:a4: 56:22:3e:e1:d9:c7:8b:64:0d:33:43:76:33:a0:27:96:0d:01: 28:c3:f7:2d:0c:0a:9f:f5:78:84:e4:e2:c1:81:54:95:cb:00: ea:f5:70:a0:4d:f8:05:4d:82:c0:8b:3a:73:a5:ab:dd:b7:1b: 21:45:9d:68:2b:65:67:48:a6:ac:09:70:b5:41:e8:48:09:3b: 9d:53:0b:a2:8f:5d:46:61:eb:2c:82:5c:d4:67:33:c1:21:89: 39:bb:8a:cd:43:da:06:e0:c4:4b:15:92:b3:b3:8b:24:ab:cf: 78:c4:f8:0b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNzVE OTc4MkIxM0U5OTEyOENEMzRGMjJDMDlGRThFN0I1Q0JBNzBCMB4XDTI1MDEzMTAx MzM0MloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNkM2NDRDOTA0QUMwOEI1 OTU2NDAxNDgzNDAxQzkxQkQ5QTkxMzY3NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALnE0QfHywBmLDfNA0syLyZMJXMuRdwYYHNc0BjpUk0Y6t832Z8O v7ZPqy51pmtJ8DDr1DpdOdR6F0H/+1ysqxUwYTgNZ97cNeYyHYHl+WWBaox2gMjO X+GSuigWtew9Ri35BdjS9J0UktXexZi1JCbUdRKiQqOtZHkbT2yM50hn+8bGG5T/ RIyoZ8Pb3xU6jYYB5Lwf5y5VzAm+N0+U0lgrQDeVAkGbJS/YivJ0WQ1sAazeNzWl WBIB9lzvhf0H/uBvyiu3Dj42BDinv4HTlmRqMbWJEuWfbkrsvgL9P6tSVyHVSH63 48E4NSz9nsjjw7uuxVJc9Vj9PcEcTLxoWZMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRsZEyQSsCLWVZAFINAHJG9mpE2dDAfBgNVHSMEGDAWgBQnXZeCsT6ZEozTTyLA n+jntcunCzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQ5L0oxMlhnckUtbVJLTTAwOGl3Sl9vNTdYTHB3cy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0oxMlhnckUtbVJLTTAwOGl3Sl9vNTdY THB3cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNDkvYkdSTWtFckFpMWxXUUJTRFFCeVJ2WnFSTm5RLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrbgDANBgkqhkiG9w0BAQsFAAOCAQEAnfb9RM448rJyX519Kee5zEXIpsg3 A749Ps8WJQMjOaxcWKMiZ/Qee7qCOum80qa7Onp6XSTp4b04NPdT05zgp/j2R9y3 qjA6UBRyMwG+tOv/EojdscbDl574FujvQKyw7XdYZjyaW0qXG0hRBX6aEThaZnDz uZN2XfD+S0WTCl3MMH/ffOtg0Il3Rwduju2kViI+4dnHi2QNM0N2M6Anlg0BKMP3 LQwKn/V4hOTiwYFUlcsA6vVwoE34BU2CwIs6c6Wr3bcbIUWdaCtlZ0imrAlwtUHo SAk7nVMLoo9dRmHrLIJc1GczwSGJObuKzUPaBuDESxWSs7OLJKvPeMT4Cw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:37 2025 by rpki-client